JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 156.146.56.102

156.146.56.102 was found in our database!

This IP was reported 223 times. Confidence of Abuse is 0%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60068
Hostname(s)	unn-156-146-56-102.cdn77.com
Domain Name	datacamp.co.uk
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 156.146.56.102

Whois 156.146.56.102

IP Abuse Reports for 156.146.56.102:

This IP address has been reported a total of 223 times from 99 distinct sources. 156.146.56.102 was first reported on November 25th 2020, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 boxed-it	2025-06-05 01:44:01 (1 year ago)	GET /.env (Tarpitted for 1d15h8m29s, wasted 8.06MB)	Web App Attack
🇩🇪 kkeyser	2025-06-03 15:45:03 (1 year ago)	GET /.env HTTP/1.1	Web App Attack
🇺🇸 TPI-Abuse	2025-06-03 08:20:48 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): ... show more (mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 03 04:20:43.032244 2025] [security2:error] [pid 814781:tid 814781] [client 156.146.56.102:61291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.63"] [uri "/.env"] [unique_id "aD6wW5EvOTq5KFg6URz6TwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-02 23:20:18 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): ... show more (mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 02 19:20:12.526503 2025] [security2:error] [pid 576287:tid 576287] [client 156.146.56.102:49257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.43"] [uri "/.env"] [unique_id "aD4xrHI12eGXkZS4JlgGrAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 LRNP	2025-06-02 12:24:40 (1 year ago)	_:443 156.146.56.102 - - [02/Jun/2025:12:24:15 +0000] "GET /.env HTTP/1.1" 404 118 "-" "python-reque ... show more _:443 156.146.56.102 - - [02/Jun/2025:12:24:15 +0000] "GET /.env HTTP/1.1" 404 118 "-" "python-requests/2.31.0" ... show less	Bad Web Bot Web App Attack
🇳🇱 Study Bitcoin 🤗	2025-06-02 10:24:19 (1 year ago)	Port probe to tcp/443 (https) [srv124]	Port Scan Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-02 09:05:21 (1 year ago)	fail2ban_hh apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [uri "/.env"]	Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 18:41:09 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): ... show more (mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 14:41:04.481931 2025] [security2:error] [pid 2470533:tid 2470533] [client 156.146.56.102:48757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.240"] [uri "/.env"] [unique_id "aDyewKo6zKRMorBTdvraEQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 www.winos.me	2025-06-01 14:00:59 (1 year ago)	stream fail	Web App Attack
🇺🇸 TPI-Abuse	2025-05-31 07:32:09 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): ... show more (mod_security) mod_security (id:210492) triggered by 156.146.56.102 (unn-156-146-56-102.cdn77.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 31 03:32:03.187115 2025] [security2:error] [pid 1230223:tid 1230223] [client 156.146.56.102:36725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.207"] [uri "/.env"] [unique_id "aDqwczYA-rFmDz_7wzQHPQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 marzzzello	2025-05-13 02:14:10 (1 year ago)	Ports: 14x 19824	Port Scan
Anonymous	2025-03-22 16:35:00 (1 year ago)	On 2025-03-22T16:35:00Z UTC, IP address 156.146.56.102 tried to connect to port(s) 61798 and was den ... show more On 2025-03-22T16:35:00Z UTC, IP address 156.146.56.102 tried to connect to port(s) 61798 and was denied. Action taken: deny. Categories reported: 15. show less	Hacking
🇦🇹 urnilxfgbez	2025-01-28 23:45:00 (1 year ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2025-01-16 08:11:07 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇷🇸 Smel	2025-01-04 12:45:10 (1 year ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 223 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇾 85.209.148.253

🇨🇳 47.114.107.233

🇨🇳 180.76.177.88

🇨🇳 124.79.225.130

🇸🇬 74.114.31.151

🇺🇸 65.49.1.235

🇬🇷 2.85.253.158

🇬🇧 62.56.246.76

🇲🇾 47.250.142.12

🇳🇱 45.148.10.151

🇳🇱 45.148.10.21

🇬🇧 35.203.210.206

🇺🇸 5.56.24.71

🇹🇼 1.165.208.106

🇺🇸 209.126.4.130

🇺🇸 195.184.76.117

🇲🇽 186.96.145.241

🇺🇸 162.216.149.112

🇲🇾 49.124.152.162

🇩🇪 209.38.245.167